Domenik Jockers

**Name of the Vulnerable Software and Affected Versions** Shopware B2B-Suite versions through 4.4.1 **Description** The issue allows a remote authenticated attacker to dump the underlying database through SQL injection in the sort-by parameter of the search functionality of b2border and b2borderlist. Possible techniques include boolean-based blind, time-based blind, and potentially stacked queries. **Recommendations** For versions through 4.4.1, consider restricting access to the search functionality of b2border and b2borderlist until a patch is available. As a temporary workaround, avoid using the `sort-by` parameter in the affected search functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DHC Vision eQMS versions 5.4.8.322 and earlier **Description** The issue is related to insufficient encoding of untrusted input/output, leading to Persistent XSS. To exploit this, an attacker must create or edit a new information object, using the XSS payload as the name. Any user who opens the object's version or history tab will be attacked. **Recommendations** For versions 5.4.8.322 and earlier, as a temporary workaround, consider restricting the ability to create or edit information objects to prevent the introduction of XSS payloads. Additionally, limit access to the version and history tabs of information objects until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.